GCVE - cpe:2.3:a:horde:internet_mail_program:6.1.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:horde:internet_mail_program:6.1.2:*:*:*:*:*:*:*

part: a version: 6.1.2 update: *

Vendor	Horde (`11d5bec1-2c1f-5ad3-b7a5-41ab167a139d`)
Product	Internet Mail Program (`1ca0701b-82ca-51f9-b9c2-948ba4f15434`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/php-horde-imp`	purl2cpe	2026-06-01 10:15:53.130290
`pkg:deb/ubuntu/php-horde-imp`	purl2cpe	2026-06-01 10:15:53.130291
`pkg:github/horde/imp`	purl2cpe	2026-06-01 10:15:53.130293
`pkg:rpm/fedora/php-horde-imp`	purl2cpe	2026-06-01 10:15:53.130294

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2014-4946`	vulnerable	2026-06-03 14:34:05.049112	Details available Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via (1) unspecified flags or (2) a mailbox name in the dynamic mailbox view. Published: 2014-07-14T14:00:00.000Z Updated: 2024-09-17T03:03:19.100Z Open on db.gcve.eu Reference links http://secunia.com/advisories/59772 http://lists.horde.org/archives/announce/2014/001025.html http://secunia.com/advisories/59770 https://github.com/horde/horde/blob/4513649810f13a32f1193bdeed76f7d85a5efa05/bundles/webmail/docs/CHANGES https://github.com/horde/horde/blob/c0144ac03814a8c2cf6fc5ac0d1af2653e9ee139/imp/docs/CHANGES	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-4945`	vulnerable	2026-06-03 14:34:05.046019	Details available Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via an unspecified flag in the basic (1) mailbox or (2) message view. Published: 2014-07-14T14:00:00.000Z Updated: 2024-09-17T04:14:56.484Z Open on db.gcve.eu Reference links http://secunia.com/advisories/59772 http://lists.horde.org/archives/announce/2014/001025.html http://secunia.com/advisories/59770 https://github.com/horde/horde/blob/4513649810f13a32f1193bdeed76f7d85a5efa05/bundles/webmail/docs/CHANGES https://github.com/horde/horde/blob/c0144ac03814a8c2cf6fc5ac0d1af2653e9ee139/imp/docs/CHANGES	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Horde Internet Mail Program (IMP) 6.1.2

PURL mappings

Vulnerability references

Contribute